("Active Directory/LDAP Auth" can can/should probably be merged into "Integrate AD Users/Groups"). I have an umbrella app which is really a suite of separate inter-related web apps. I'd like to authentiate users against either a corporate MS AD server or (should it not be allowed) to a local OpenLDAP server. Having a single sign-on to all the apps would be preferred, but just authenticating against a common authority would be an 80% solution, and more feasible from a practical sense (needing less custom development to each app, some of which already support LDAP authentication).